Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
File: 8o-houRJGJHBmw8QsIb2VZhPWHk.mft (raw, json)
Hash identifier: VqeR2T67DkdcwEGZnVrYIL0xGNecaK646+ZaqPXERB0=
Subject key identifier: FF:B5:86:E2:17:BA:04:6A:1C:1E:8D:60:CA:DC:FA:23:A1:D9:F8:89
Authority key identifier: F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
Certificate issuer: /CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Certificate serial: 019923A09EFE6BC892926377470FF2049654
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
Manifest number: 0AC3
Signing time: Sun 07 Sep 2025 10:02:32 +0000
Manifest this update: Sun 07 Sep 2025 10:02:32 +0000
Manifest next update: Mon 08 Sep 2025 10:02:32 +0000
Files and hashes: 1: 8o-houRJGJHBmw8QsIb2VZhPWHk.crl (hash: tWc8tVhlYiWacLyDhDNh5iKAyItGhLFGKUGq+xZJTv8=)
2: IAJBt24rgV_us-DgHGqft-brDOM.roa (hash: EYG4N8j/B/VmDjgrJQXF6wEvv1LkIhmvGFmYVI9Ke7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:9e:fe:6b:c8:92:92:63:77:47:0f:f2:04:96:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Validity
Not Before: Sep 7 10:02:32 2025 GMT
Not After : Sep 8 10:02:32 2025 GMT
Subject: CN=ffb586e217ba046a1c1e8d60cadcfa23a1d9f889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d8:54:92:14:31:2e:f5:fe:c7:d1:bb:e4:b2:
a2:e1:d5:b4:6b:68:1e:00:ac:63:fa:b2:9c:92:f2:
3f:b0:e2:d9:29:b7:b0:aa:a7:3e:db:00:67:8b:58:
23:eb:e2:19:1a:86:16:18:f6:21:fe:46:b8:4c:a0:
97:6b:95:ea:f1:53:70:a6:e6:f1:bb:c8:90:3b:9e:
78:a9:ae:b4:2e:d6:73:fd:30:fb:5c:ed:b9:0a:c4:
67:f8:3f:bb:72:1a:1f:2d:31:43:de:de:5c:76:64:
03:ea:9c:4f:2d:7a:04:d0:de:54:93:14:ad:ac:f7:
d5:5b:83:8b:8f:c6:74:0d:7d:e6:67:17:f8:5a:86:
88:c9:80:6c:19:47:2f:c1:bb:25:f8:c7:d5:06:0b:
6e:4f:f0:61:6c:74:17:fc:ad:e4:f6:b0:4e:9d:e3:
8c:e0:7e:70:62:5a:ae:85:8d:1e:b5:43:c8:df:84:
d5:56:5c:8c:45:b2:08:f5:d9:95:ac:f9:f7:c4:25:
72:fc:b7:d0:3f:0c:f5:0f:fd:27:34:e6:23:ce:79:
9e:be:48:2d:a5:b5:bc:41:3d:18:00:39:af:c4:49:
af:0e:13:5a:8a:b2:b0:73:00:29:fa:ed:67:de:68:
95:42:82:e2:68:75:29:ba:dd:23:fb:ed:78:9d:98:
0b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:B5:86:E2:17:BA:04:6A:1C:1E:8D:60:CA:DC:FA:23:A1:D9:F8:89
X509v3 Authority Key Identifier:
keyid:F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:39:1e:12:3c:db:f1:fc:f6:e9:39:ca:d4:4b:91:4d:e9:89:
9e:ef:5e:3a:50:14:67:78:d5:d6:96:a9:d7:88:f9:3c:34:78:
4c:9d:b2:7c:5d:8a:5b:8f:e2:e6:28:dc:e5:9a:30:87:ec:a6:
94:24:87:fa:32:f2:a5:c4:6a:b0:9a:27:e8:32:09:60:4b:be:
ad:87:ec:3e:18:13:b6:a1:80:e3:af:43:c0:fc:b4:7f:e3:bd:
2f:56:2a:dc:41:51:63:b0:05:fd:76:31:cf:73:f4:6b:3f:29:
9a:73:2f:80:64:f3:ff:5d:79:90:67:8b:31:c5:ad:14:c5:57:
f6:cf:81:65:83:de:a6:10:b6:96:89:1f:46:34:ad:c7:30:00:
1c:35:db:fd:ff:db:6a:9f:eb:f2:cd:fb:97:92:3f:9d:90:30:
6c:52:7d:f1:24:d7:4c:5c:c6:f9:c1:43:97:13:e9:b8:40:56:
60:2d:4c:f7:23:a3:9f:31:d0:ac:ce:8b:53:7e:9d:b5:7b:10:
9c:03:ba:67:7a:76:69:76:f5:86:7e:e8:41:89:09:8d:f1:68:
ff:ce:91:6a:b1:5f:fd:f1:c0:b3:06:78:ef:31:9c:38:40:28:
64:91:40:69:f4:6e:bb:21:fa:89:b1:55:ae:21:20:60:98:6a:
f6:13:f3:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjoJ7+a8iSkmN3Rw/yBJZUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyOGZhMWEyZTQ0OTE4OTFjMTliMGYxMGIwODZmNjU1OTg0
ZjU4NzkwHhcNMjUwOTA3MTAwMjMyWhcNMjUwOTA4MTAwMjMyWjAzMTEwLwYDVQQD
EyhmZmI1ODZlMjE3YmEwNDZhMWMxZThkNjBjYWRjZmEyM2ExZDlmODg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA69hUkhQxLvX+x9G75LKi4dW0a2ge
AKxj+rKckvI/sOLZKbewqqc+2wBni1gj6+IZGoYWGPYh/ka4TKCXa5Xq8VNwpubx
u8iQO554qa60LtZz/TD7XO25CsRn+D+7chofLTFD3t5cdmQD6pxPLXoE0N5UkxSt
rPfVW4OLj8Z0DX3mZxf4WoaIyYBsGUcvwbsl+MfVBgtuT/BhbHQX/K3k9rBOneOM
4H5wYlquhY0etUPI34TVVlyMRbII9dmVrPn3xCVy/LfQPwz1D/0nNOYjznmevkgt
pbW8QT0YADmvxEmvDhNairKwcwAp+u1n3miVQoLiaHUput0j++14nZgLRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP+1huIXugRqHB6NYMrc+iOh2fiJMB8GA1UdIwQY
MBaAFPKPoaLkSRiRwZsPELCG9lWYT1h5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOG8taG91UkpHSkhCbXc4UXNJYjJWWmhQV0hrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC84YmJmYWMtMDc4MC00YmJkLWJjYTIt
MzRhMTRhMmJiNDAxLzEvOG8taG91UkpHSkhCbXc4UXNJYjJWWmhQV0hrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC84YmJmYWMtMDc4MC00YmJkLWJjYTItMzRhMTRhMmJiNDAx
LzEvOG8taG91UkpHSkhCbXc4UXNJYjJWWmhQV0hrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApjkeEjzb
8fz26TnK1EuRTemJnu9eOlAUZ3jV1pap14j5PDR4TJ2yfF2KW4/i5ijc5Zowh+ym
lCSH+jLypcRqsJon6DIJYEu+rYfsPhgTtqGA469DwPy0f+O9L1Yq3EFRY7AF/XYx
z3P0az8pmnMvgGTz/115kGeLMcWtFMVX9s+BZYPephC2lokfRjStxzAAHDXb/f/b
ap/r8s37l5I/nZAwbFJ98STXTFzG+cFDlxPpuEBWYC1M9yOjnzHQrM6LU36dtXsQ
nAO6Z3p2aXb1hn7oQYkJjfFo/86RarFf/fHAswZ47zGcOEAoZJFAafRuuyH6ibFV
riEgYJhq9hPzsg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:54:32 2025 by rpki-client